Alternatives and similar repositories for Hunt

Users that are interested in Hunt are comparing it to the libraries listed below

• ToweringDragoon / SACL_Scanner
  SACL Scanner is a tool designed to scan and analyze SACLs.
  ☆45Updated 9 months ago
• skelsec / adiskreader-secretsdump
  Extract registry and NTDS secrets from local or remote disk images
  ☆44Updated 8 months ago
• Mr-Un1k0d3r / MsGraphFunzy
  Scripts to interact with Microsoft Graph APIs
  ☆44Updated last year
• nullenc0de / trust-validator
  Validates priv escalation of AD trusts
  ☆48Updated 7 months ago
• slygoo / pssrecon
  ☆40Updated last year
• myexploit / living_off_the_land
  ☆44Updated last year
• OtterHacker / ShareFouine
  ☆52Updated last year
• whokilleddb / SOAPHound
  SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
  ☆33Updated last year
• synacktiv / AADOutsider-py
  Python3 rewrite of AsOutsider features of AADInternals
  ☆57Updated 3 months ago
• nettitude / SharpConflux
  ☆65Updated last year
• heartburn-dev / PKI-Escalate
  Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…
  ☆25Updated 2 years ago
• nyxgeek / autodiscover_enum
  time-based user enum via Basic Auth in Azure against Autodiscover
  ☆33Updated last year
• OOAFA / squeegee
  A collection of tools using OCR to extract potential usernames from RDP screenshots.
  ☆30Updated last year
• ImpostorKeanu / eavesarp-ng
  ☆40Updated 5 months ago
• scottctaylor12 / Red-Lambda
  Leveraging AWS Lambda Function URLs for C2 Redirection
  ☆44Updated 2 years ago
• LaresLLC / SuperSharpShares
  SuperSharpShares is a tool designed to automate enumerating domain shares, allowing for quick verification of accessible shares by your a…
  ☆75Updated last year
• WKL-Sec / docker-cobaltstrike
  Docker container for running CobaltStrike 4.7 and above
  ☆24Updated 8 months ago
• xpn / adfstoolkit
  ☆37Updated 10 months ago
• MartinoTommasini / offlineSCCMdecrypt
  Step-by-step documentation on how to decrypt SCCM database secrets offline
  ☆45Updated last month
• felmoltor / goLAPS
  Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.
  ☆32Updated 8 months ago
• redskal / SharpAzbelt
  .NET port of Leron Gray's azbelt tool.
  ☆26Updated 2 years ago
• skelsec / aroadtools
  fully async implementation of Dirkjan's ROADTools
  ☆33Updated 8 months ago
• LuemmelSec / CVE-2023-29357
  ☆52Updated 2 years ago
• mlcsec / SharpGraphView
  Microsoft Graph API post-exploitation toolkit
  ☆95Updated last year
• kozmer / rspy
  rust port of pspy with support for process monitoring over dbus
  ☆35Updated 4 months ago
• SySS-Research / ldif2bloodhound
  Convert an LDIF file to JSON files ingestible by BloodHound
  ☆43Updated 7 months ago
• HackingLZ / saas_enum
  ☆34Updated 3 months ago
• jfjallid / go-lsass
  Tool to aid in dumping LSASS process remotely
  ☆42Updated last month
• redr0nin / bloudstrike
  Linux CS bypass technique
  ☆32Updated 9 months ago
• GhostManager / cobalt_sync
  Standalone Cobalt Strike operation logging Aggressor script for Ghostwriter 2.0+
  ☆34Updated last year